I am currently trying to convert a console app from the Trading API to the REST API's using OAuth2 the authorization code grant flow. I have read so much and seen so many examples I think I am running around in circles.
I believe authorization code grant flow to be the correct method but I am not totally sure. I can get an access token via the client credentials grant flow but if I add any scope other than "https://api.sandbox.ebay.com/oauth/api_scope" it errors with invalid scope. I have installed the OAuth2 client library but cannot see how to get an access token for this method of authorising.
I wondered if someone could answer 1 or more of the questions I have?
1. Am I totally off the mark with this?
2. Am I correct in thinking I need to obtain an access token using the authorization code grant flow?
3. Can this be achieved without thee need to physically login via a page or is this a one off call made when the app starts and then the token is refreshed until the app closes?
4. Can the OAuth2 client obtain a token using authorization code grant flow.